NOVEMBER 2019 / Stockholm
IP EXPOCyber SecurityDeveloperAI and AnalyticsIoTBlockchain

The Swedish IT security index

Monday 24 July 2017

Are the Swedish municipalities prepared and empowered to protect and manage the information they are eligible to safekeep? The cybersecurity threat is changing in shape, motive and means which requires better tools and insights into how to defend against hacker attacks. 

Despite the fact that the municipalities handle sensitive information about citizens, they lack operative and strategic maturity, this shows the new report "Swedish IT security index".


The Swedish IT Security Index is a compilation of the degree of maturity in various industries in terms of IT security. The tool can be used as a benchmark to test security awareness and level.


The survey shows differences regarding the security status between different industries. The financial industry is characterized by showing great maturity in relation to its risk, while the municipal sector has a lot of work in front of them when it comes to IT security.


Notably, 7% of organizations with more than 1,500 employees lack an IT security policy. In combination with the world being digitized, IT security has become a board issue in many companies. However, the survey shows that less than 15% has an appointed cybersecurity Board member.


20% of the respondents has not identified its protective assets. The lack of an analysis is serious and can lead to significant losses.


The main incentive to handle threats are "lost trust for the organization" / "long-term impact on our brand", which is found in most industries.


The financial consequences of lack of IT protection are significant: More than 15% of the companies have walked away from doing business due to IT security risks.


Anders Strömberg is the VP of Marketing at the Swedish cybersecurity company Advenica. He will give a presentation about the Swedish IT security index at IP EXPO Nordic on the 21st of September.


The survey was conducted by Radar in collaboration with Advenica, Dataföreningen, SIG Security and Christer Magnusson, PhD in information security, Stockholm University.